GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
206 advisories
Filter by severity
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability...
High
Unreviewed
CVE-2017-7367
was published
May 17, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before...
High
Unreviewed
CVE-2014-9883
was published
May 17, 2022
An integer underflow may occur due to lack of check when received data length from...
High
Unreviewed
CVE-2017-18278
was published
May 24, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function...
Critical
Unreviewed
CVE-2019-10053
was published
May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in...
Critical
Unreviewed
CVE-2018-11930
was published
May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from...
Critical
Unreviewed
CVE-2019-2245
was published
May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from...
Critical
Unreviewed
CVE-2019-2244
was published
May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially...
High
Unreviewed
CVE-2019-9755
was published
May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an...
Moderate
Unreviewed
CVE-2019-1628
was published
May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media...
High
Unreviewed
CVE-2019-13602
was published
May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.
High
Unreviewed
CVE-2019-5459
was published
May 24, 2022
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing...
Critical
Unreviewed
CVE-2019-14199
was published
May 24, 2022
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a...
High
Unreviewed
CVE-2019-14523
was published
May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an...
Critical
Unreviewed
CVE-2019-14532
was published
May 24, 2022
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive...
High
Unreviewed
CVE-2019-12678
was published
May 24, 2022
An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of...
High
Unreviewed
CVE-2019-5099
was published
May 24, 2022
Buffer overflow can occur while processing non-standard NAN message from user space. in...
Moderate
Unreviewed
CVE-2019-2297
was published
May 24, 2022
A freed memory access vulnerability exists in the SVG Marker Element feature of Apple Safari's...
High
Unreviewed
CVE-2019-5144
was published
May 24, 2022
An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa...
Moderate
Unreviewed
CVE-2019-5148
was published
May 24, 2022
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU...
High
Unreviewed
CVE-2020-6096
was published
May 24, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly...
High
Unreviewed
CVE-2020-1400
was published
May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)....
Moderate
Unreviewed
CVE-2020-14699
was published
May 24, 2022
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0,...
High
Unreviewed
CVE-2020-8174
was published
May 24, 2022
An exploitable denial of service vulnerability exists in the freeDiameter functionality of...
Moderate
Unreviewed
CVE-2020-6098
was published
May 24, 2022
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal,...
Moderate
Unreviewed
CVE-2020-24370
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API